SEARCH RESULTS
 
Showing 1-10 of 28 records
 
Expand article

Why PCI Is Good For Business

2007-12-03 17:16:25 by RSnake in ha.ckers.org web application security lab
 
...impacts a lot of people who read this site, whether they want it to or not, and therefore it also impacts their businesses and their personal lives which bleed onto many other sites. If I were to have a major 0-day exploit on this site, it would be a problem, not just for me, but for everyone who visits the site who would be vulnerable, and...
 
Tags: mega huge company-a, huge, pci, security, security directly impacts, company-a, mega huge company-b, company-b, exploit
 
 
 
 
Expand article

Poor security quality in software. Someone is watching over me.

The Article has images
2008-07-30 14:51:49 by Chris Wysopal in Zero in a bit
...impacts of this. What are your thoughts on this? Are we seeing anything at present to make us more confident of the future DR: It is true that it takes years to see the positive impacts of a change of mindset. And we are in the unfortunate position of repeating many old lessons At base, human history is a collection of exhaustive, expensive,...
 
Tags: software, approach insecure software, insecure software, repeatable software security, secure online environment, environment, secure, secure software, software assurance
 
 
 
 
Expand article

Poor Security Quality In Software; Someone Is Watching Over Me

The Article has images
2008-07-30 14:51:49 by Chris Wysopal in Zero in a bit
...impacts of this. What are your thoughts on this? Are we seeing anything at present to make us more confident of the future DR: It is true that it takes years to see the positive impacts of a change of mindset. And we are in the unfortunate position of repeating many old lessons At base, human history is a collection of exhaustive, expensive,...
 
Tags: software, approach insecure software, insecure software, repeatable software security, secure online environment, environment, secure, secure software, software assurance
 
 
 
 
Expand article

Business In Thailand - Part 1: The Challenge

2008-09-04 14:16:36 by Tim Bass in The Complex Event Processing Blog
 
...impacts professional services. I will also touch on how this lack of regard for intellectual property impacts a consulting practice. Also, I will touch on some cultural differences in how Thais appear to view teamwork, which is very different than in the US
 
Tags: challenge, business, thailand, business challenge, global business slowdown, thailand chargethousands, foreigners, money, money flows
 
 
 
 
Expand article

Exaggerating Timing Attack Results Via GET Flooding

2007-12-10 04:04:33 by RSnake in ha.ckers.org web application security lab
 
...impacts, most likely When you found the right URL, launching a GET request flood against the server could seriously delay certain types of requests (especially if they must touch a database two times versus one time, for instance - if the DB was part of the flooding). Suddenly something that is normally the difference of a few microseconds...
 
Tags: server load, server, requests, practical applications, time, bandwidth latency, url, times versus, difference
 
 
 
 
Expand article

Top infosec risks for 2008

2007-12-30 16:07:53 by Editor in Security Links
 
From CISSP forum We have completed and published our collaborative white paper listing the top information security threats, vulnerabilities and impacts, along with some risk scenarios and controls, as we head towards the new year http://www.iso27001 security. com/Top informat ion security risks for 2008.pdf
 
Tags: collaborative white paper, iso27001 security, cissp forum, risk scenarios, head, pdf, impacts, vulnerabilities, controls
 
 
 
 
Expand article

New Audio comment line number - +1-415-830-5439 (and ditching K7.net)

2007-12-19 11:03:29 by HASH0x89eb6f0 in Blue Box: The VoIP Security Podcast
 
...impacts podcasters, especially, because our shows may live on out there on the Internet for an incredibly long time. You can still download Blue Box podcast #1 from two years ago which has the wrong comment line included (in fact, it is 2 or 3 numbers ago). So losing your number is really quite bad from a community-building point-of-view. If...
 
Tags: comment, standard comment line, comment line, wrong comment line, call, call control xml, net call-in, net, fax message
 
 
 
 
Expand article

Security is not all about Security Updates

2007-12-17 12:58:00 by sdl in The Security Development Lifecycle
 
...impacts the design and code that goes into these security features, however Next is the response process. All software has security vulnerabilities at some stage, and it's important that quality updates for all supported versions of the software in all supported languages be available as soon as possible. But no sooner! You can't rush a...
 
Tags: security, end-user security documentation, security response, fix security bugs, response, security fix, implementation vulnerabilities, vulnerabilities, security feature development
 
 
 
 
Expand article

The New Threat Modeling Process

The Article has images
2007-10-02 01:15:35 by sdl in The Security Development Lifecycle
...impacts blend together really quickly. The most valuable use of STRIDE is to help people think about how threats have impacted elements of a design in the past. That is, its a framework for finding threats, not for describing them. What if someone spoofs this host 4. Mitigate Here on the SDL strategy team, we love threat modeling. We know...
 
Tags: process, threat, process validation entails, threat model, software process diagram, people, people trust boundaries, love threat, hamster wheel
 
 
 
 
Expand article

New Audio comment line number - +1-415-830-5439 (and ditching K7.net)

2007-12-19 12:01:39 by Dan York in Blue Box: The VoIP Security Podcast